Bug#318039: Needs to run as root with X
Andreas Metzler
ametzler@downhill.at.eu.org
Wed, 13 Jul 2005 19:07:12 +0300
On 2005-07-13 Andrew Buckeridge <andrewb@ab.bgc.com.au> wrote:
> package: eximon4
> version: 4.50-8
>
> In Debian eximon has to run as root, but Xing to root is probably not a
> good idea. Having log and spool directories readable by user or group
> then eximon will sought of work.
group adm is specifically designated for owning logfiles. By adding a
user to this group you generally give him/her (readonly) access to this
information.
exim4 implements this convention.
> Without access to the spool files
> eximon.bin says "can't read spool file", but is still useful.
> The eximon script could use newgrp or eximon.bin could be setgid.
eximon can be used to view mesages (their contents), cause delivery and
stuff like that, which is completely different sort of privilege than
just reading logfiles.
If you want to give a user this kind of privilege add him to the
Debian-exim group.
cu andreas